Legal claims defining the scope of protection, as filed with the USPTO.
1. A method for processing packets, comprising: maintaining, by a network element comprising a processor, a peer dynamic network address translation (DNAT) table associated with a peer network element; detecting, using the processor, that the peer network element has failed; merging, in response to the detecting and using the processor, the peer DNAT table into a local DNAT table to obtain a merged DNAT table; and processing, using the processor, an incoming packet using the merged DNAT table.
2. The method of claim 1 , wherein the network element and the peer network element are each one selected from a group consisting of a switch, a router, and a multilayer switch.
3. The method of claim 1 , wherein maintaining the peer DNAT table comprises: obtaining, from the peer network element, at least one entry of a second local DNAT table; storing the at least one entry of the second local DNAT table locally in the peer DNAT table; and obtaining, from the peer network element, updates to the second local DNAT table.
4. The method of claim 3 , wherein the at least one entry of the second local DNAT table is obtained via a push-mechanism.
5. The method of claim 3 , wherein the updates are obtained periodically.
6. The method of claim 1 , wherein detecting that the peer network element has failed, comprises: attempting to synchronize DNAT state with the peer network element; making a first determination that the attempting was unsuccessful; initiating, in response to the first determination, a timeout timer; and making a second determination that the peer network element has failed when the timeout timer has elapsed.
7. The method of claim 6 , wherein the synchronization of DNAT state is unsuccessful when an acknowledgement packet is not received from the peer network element.
8. The method of claim 1 , wherein the incoming packet is rerouted to the network element upon failure of the peer network element.
9. The method of claim 1 , further comprising: re-establishing a connection with the peer network element after the peer network element has rebooted; and providing, after the connection is established, the peer DNAT table to the peer network element.
10. The method of claim 9 , further comprising: prior to providing the peer DNAT table to the peer network element: updating the peer DNAT table using at least one entry of the merged DNAT table.
11. The method of claim 9 , further comprising: reconciling the merged DNAT table to obtain a new local DNAT table.
12. The method of claim 11 , wherein reconciling the local DNAT table comprises, for each entry of the peer DNAT table, deleting an entry of the local DNAT table matching the entry of the peer DNAT table.
13. The method of claim 1 , further comprising: the peer network element after re-initializing in response to a failure: re-establishing a connection with the network element; and recovering, after the connection is established, the peer DNAT table from the network element.
14. A network element, comprising: a processor; a memory; a persistent storage device; a physical port; and a control plane executing using the processor and comprising a system state database (SSD) and a network address translation (NAT) agent, wherein the SSD and the NAT agent are operatively connected, wherein the NAT agent is programmed to: maintain, on the SSD, a peer dynamic network address translation (DNAT) table associated with a peer network element; detect that the peer network element has failed; merge, in response to the detecting, the peer DNAT table into a local DNAT table to obtain a merged DNAT table; and process an incoming packet using the merged DNAT table.
15. The network element of claim 14 , wherein the NAT agent is further programmed to: re-establish a connection with the peer network element after the peer network element has rebooted; and provide, after the connection is established, the peer DNAT table to the peer network element.
16. The network element of claim 15 , wherein the NAT agent is further programmed to: reconcile the merged DNAT table to obtain a new local DNAT table.
17. A non-transitory computer readable medium comprising computer readable program code, which when executed by a processor enables the processor to perform a method, the method comprising: maintaining, by a network element, a peer dynamic network address translation (DNAT) table associated with a peer network element; detecting that the peer network element has failed; merging, in response to the detecting, the peer DNAT table into a local DNAT table to obtain a merged DNAT table; and processing an incoming packet using the merged DNAT table.
18. The non-transitory computer readable medium of claim 17 , wherein the method further comprises: re-establishing a connection the peer network element after the peer network element has rebooted; and providing, after the connection is established, the peer DNAT table to the peer network element.
19. The non-transitory computer readable medium of claim 18 , wherein the method further comprises: reconciling the merged DNAT table to obtain a new local DNAT table.
20. The non-transitory computer readable medium of claim 17 , wherein the method further comprises: the peer network element after re-initializing in response to a failure: re-establishing a connection with the network element; and recovering, after the connection is established, the peer DNAT table from the network element.
Unknown
February 19, 2019
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.